$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/BFFF6C4A07D911EDA41A0B25C4F9AE02.roa File: BFFF6C4A07D911EDA41A0B25C4F9AE02.roa (raw, json) Hash identifier: p2UL6GD3BL6Vbs5hBii2dCX7XInOsF8w0LqpGVSuwTU= Subject key identifier: FE:D2:37:1B:7A:13:F8:87:87:24:E9:15:4F:CB:52:21:EC:65:D4:A7 Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 054F Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/BFFF6C4A07D911EDA41A0B25C4F9AE02.roa Signing time: Wed 02 Jul 2025 02:19:55 +0000 ROA not before: Wed 02 Jul 2025 02:19:55 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 135074 IP address blocks: 103.172.110.0/23 maxlen: 24 103.204.13.0/24 maxlen: 24 203.168.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 02:34:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1359 (0x54f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Jul 2 02:19:55 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6864974b-4c04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:03:79:e6:03:fe:a1:57:ac:e1:74:15:b9:40: a5:46:26:54:f7:f5:7f:e9:a9:1e:d9:31:07:01:2c: f4:69:a3:00:0d:06:1a:59:fe:39:26:d7:2f:8e:40: 66:2e:60:fb:93:50:fe:e9:12:ca:24:8a:a3:cf:b4: af:67:36:b7:01:67:59:88:6f:45:e4:bf:5d:36:a9: 02:81:1b:1e:a1:ea:35:e8:da:a2:55:c2:b8:f2:73: f6:0d:c2:6c:bb:ec:0f:3e:c6:e6:ea:49:57:5d:f2: 5b:c0:3b:d7:eb:fb:28:0b:20:74:79:36:4c:bf:3f: 6c:09:01:1a:33:83:b2:51:ed:3f:76:cf:f9:a5:51: 5c:4c:5d:66:ff:ce:d3:3e:eb:01:b1:c4:e3:af:17: 7e:16:cf:62:f6:43:2f:8e:d4:aa:c3:fb:1f:2d:6c: 5a:5a:f2:2f:11:99:40:3f:ad:6d:ee:5a:0b:21:c7: c1:75:a5:7d:79:06:c7:9f:83:68:1e:7c:57:67:30: 90:c0:5e:06:d6:65:56:5e:51:02:b5:ca:2d:47:6d: 18:03:a1:1b:c8:e0:26:b0:89:68:26:0e:9c:16:12: b8:79:99:33:10:fa:db:8f:fe:10:63:f3:9f:3e:77: b6:07:00:50:23:41:60:a9:ca:b7:11:71:91:d5:7d: d1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:D2:37:1B:7A:13:F8:87:87:24:E9:15:4F:CB:52:21:EC:65:D4:A7 X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/BFFF6C4A07D911EDA41A0B25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.110.0/23 103.204.13.0/24 203.168.128.0/22 Signature Algorithm: sha256WithRSAEncryption 00:73:5c:9a:04:fa:aa:5f:bd:de:38:58:f1:fc:79:a2:b4:5a: 0f:77:52:f8:0b:f4:a1:fc:30:fa:63:29:65:8e:ee:41:c1:a3: 42:0a:c6:f6:35:72:a9:7e:cd:bb:c2:10:85:2a:b8:ed:9f:b5: aa:6d:28:fa:c0:7f:7a:29:10:fd:34:5a:c4:6c:b7:64:a7:f5: 2b:87:e6:75:6c:99:4d:0d:01:e3:54:a5:1c:a8:6f:cc:60:1f: 89:02:b5:69:ba:7c:2c:fb:17:e7:2c:3e:72:45:43:85:3a:c0: c6:7f:63:dc:69:2c:e5:8a:c8:a8:74:c9:22:7e:f7:60:53:da: 83:96:3a:38:ab:40:06:08:2c:a8:28:80:a5:8d:3b:89:ff:be: cc:5b:17:db:a5:a0:81:db:24:68:13:b7:8a:c0:79:40:6c:c4: 07:a0:c3:87:da:40:9a:39:2c:79:43:7a:a8:f2:29:a9:a3:bc: bc:69:f3:42:78:de:89:06:b2:c5:12:e8:68:da:eb:28:29:b2: 3b:d6:8f:11:05:a9:d5:69:33:da:ce:0b:30:a1:0e:7e:12:a9: bb:17:18:16:b0:2a:72:7d:e4:eb:c1:59:be:13:1e:41:1a:94: f3:10:f1:23:2b:e3:9f:3b:0d:75:aa:26:29:f3:c5:6b:44:86: 44:70:f2:d8 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjUwNzAyMDIxOTU1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY0OTc0Yi00YzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQN55gP+oVes4XQVuUClRiZU9/V/6ake2TEHASz0aaMADQYaWf45JtcvjkBm LmD7k1D+6RLKJIqjz7SvZza3AWdZiG9F5L9dNqkCgRseoeo16NqiVcK48nP2DcJs u+wPPsbm6klXXfJbwDvX6/soCyB0eTZMvz9sCQEaM4OyUe0/ds/5pVFcTF1m/87T PusBscTjrxd+Fs9i9kMvjtSqw/sfLWxaWvIvEZlAP61t7loLIcfBdaV9eQbHn4No HnxXZzCQwF4G1mVWXlECtcotR20YA6EbyOAmsIloJg6cFhK4eZkzEPrbj/4QY/Of Pne2BwBQI0Fgqcq3EXGR1X3RXwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFP7SNxt6 E/iHhyTpFU/LUiHsZdSnMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvQkZGRjZDNEEw N0Q5MTFFREE0MUEwQjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnrG4DBABnzA0DBALLqIAwDQYJKoZIhvcNAQELBQADggEB AABzXJoE+qpfvd44WPH8eaK0Wg93UvgL9KH8MPpjKWWO7kHBo0IKxvY1cql+zbvC EIUquO2ftaptKPrAf3opEP00WsRst2Sn9SuH5nVsmU0NAeNUpRyob8xgH4kCtWm6 fCz7F+csPnJFQ4U6wMZ/Y9xpLOWKyKh0ySJ+92BT2oOWOjirQAYILKgogKWNO4n/ vsxbF9uloIHbJGgTt4rAeUBsxAegw4faQJo5LHlDeqjyKamjvLxp80J43okGssUS 6Gja6ygpsjvWjxEFqdVpM9rOCzChDn4SqbsXGBawKnJ95OvBWb4THkEalPMQ8SMr 4587DXWqJinzxWtEhkRw8tg= -----END CERTIFICATE-----Generated at Wed Jul 2 21:05:01 2025 by rpki-client